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Field of the invention 

TTiis Invention relates to a chip for processing content, comprising at least a microprocessor. 
The invention particularly concerns chips intended to be embedded In devices designed to 
recover from a media a content to be protected. The invention also relates to a device wherein 
such a chip 13 embedded. The invention ^iso relates to a method to protect such a chip according 
to the Invention. 

Background of the Invention 

In known devices dedicated to a content processing, said content needed.to be protected, 
security of said content Is generally ointralled by means e>dBmal to the chip that process the 
content, called main chip in the following. Such external security means Include smart card 
systems as, for example, described in document EP1150506. The advantage of such ext^ai 
security means Is that they provide a good flexibility of the protection of the device. 

Nevertheless, in this document, the chip that includes the content processing means, and 
consequently the core of the system, is not protected by itself. Connectors int^ded to be used to 
connect external elements like, for example, a bus for testing the chip, can serve to teke control 
of the content processing means- Thus, the processed content is accessible and is no more 
protected. I^ioreover, separation between main chip and security elements implies ttiat 
communications between the both can be eavesdropped. Moreover, security means proposed In 
the stete of the art are expensive and require supplementary manufacturing steps to be 
implemented in devices. 

Summary of the Invention 

It is an object of the present invention to solve all the above-mentioned drawbacks. It is 
another object of the invention to propose low price secured devices. 

This is achieved with a chip as claimed In one of the claims 1 to 8, and with a device as 
claimed in claim 9 or 10. A chip according to the invention includes an Integrated non-volatile 
programmable memory for storing protection data and protected data, said protection data being 
intended to be used for authorizing/denying access to said protected data by said microprocessor 
under execution of a program. 

The Insertion of such a non-volatile programmable memory inside the chip that Includes the 
processing means allows to provide an integrated protection for different features of said chip. An 
access by said mksioprocessor can be in writing or reading. The invention enables flexible security 
means to be implemented in a very simple and low cost direct vyay in a main diip. In a first 
mbodiment, protected data define features of said chip and said microprocessor is authorized or 
not to make an access in writing or in reading to said protected data. For example, such a 
feature can be a connection to external elements like, for example, a bus for testing the chip. 
The invention then allows to avoid that such a connection serves to take control of the 
microprocessor. The microprocessor requiring, an access to protected data has a program that 



makes it check if protection data authorize or deny said access- If several microprocessors are 
present in said chip, each of them has its own protedJpn data for its own access to protected 
data. As protection may provide different kinds of protecBon and protected data may correspond 
to several kinds of feature for said diip, the invention then allows a great diversity of protections. 
In the fiDllowing, several embodiments are proposed aaxirding to the principles of the invention. 

Advantageously, protection data are only modifiable so as to Increase the protection. Thus, it 
is no more possible to make an access to a protected data as soon as protsction data has been 
modified in order to deny ft 

According to a first embodiment of the Invention, each value that can be taken by said protection 
data has a specific meaning fbr the program of said microprocessor: access to given protected 
data authorized or denied or authorized under condition. Thus; an advantageous implementation 
proposes that protection data include a password, said access being authorized/denied through a 
password check. 

The first embodiment can be used for protected data including data to activate/deactivate 
optional feature of the chip. Such an optional feature can be a connection intended to be 
connected to an external device for downloading program and/or data from said external device. 
Such an optional feature can be an external boot program for said microprocessor, said external 
boot program including instructions for downloading a new boot program for said microprocessor 
from an external memory. Such optional feature can be any feature that can be advantageously 
activated/deactivated in a chip. Consequentiy, this first embodiment enables the customization of 
features of the chip. 

According to a second embodiment of the invention, protection data include a value defining 
an address limit under which address limit of said non-^iatile memory stored data are protected 
data and access to such protected data is denied. In this embodiment, protection data constitute 
a limit for the program of said microproressor from which access is denied. Advantageously, 
protection can only be increased and said value Is then only modifiable to be increased. 

In an application of this second embodiment, protected data include programs and data 
dedicated to the functioning of a conditional access dedicated microprocessor. Said conditional 
access dedkated microprocessor is Intended to interact with security data present in the content 
processed by said chip as known in the state of the art. Consequentiy, principles according to the 
invention allow the implementation of security means inside the main chip by allowing the 
protection of program and data Inside the main chip itself. Such security means can be similar to 
the ones present on smart card chips. 

Any downloaded program and data of several kinds: boot program, conditional access 
program... can also be protected according to this second advantageous embodiment 



The invention then enables such a chip to be protected as hackers would not be able to listen 
communtcations between said microprocessor and security elements present on the chip as these 
security elements will be implemented in the chip itself. 

The Invention also relates to a device Intended to recover a content from a media and to 
process said content, said device including a connection to said media and a chip as described 
hereinabove. Advantageously, said device Is intended to process encrypted video/audio data. 

The invention also relates to a method for obtaining a protected chip including at least a 
microprocessor, said method using a chip including at least an integrated non-volatile 
programmable memory, called non-volatile memory, said non-volatile memory Including 
protection data, said protection data being intended to be used for authorizing/denying access to 
protected data in said non-volatlle memory by said microprocessor under execution of a program, 
said method includes the steps of: 

- using at least an authorized access to modify protected data in said non-volatile memory, 

- protecting the access to said protected data in non-volatile memory by modifying 
protection data in order to deny said access. 

Brief Description of the Drawings 
The invention is described hereafter in d^il in reference to the diagrammatic figures 
whertin: 

Rg. la and lb illustrates devices according to the state of the art; 
Fig. 2 Illustrates a chip according to the invention; 

Rg. 3 illustrates a schematic programmable non-volatile memory according to the 
invention; 

Rg. 4 Illustrates a chip acconjing to a preferred embodiment of the invention. 

Description of embodiments 

Rgure la shows a device DEV according to the state of the art. Such a device DEV is 
intended to recover a content from a media VCM. Said content can be a received signal, data 
from a disc... Said media can be a networic (satellite, terrestrial, cable, wireless...)/ a DVD, Flash 
Cards, ttie hard disk of personal video recorders... Said device can be a Set Top Box, a TV 
receiver, a DVD player, a connected home server, a portable audio player, a mobile phone... 

Said device DEV includes at least a chip CHP including at least a microprocessor MP with a 
program PRO to process content recovered from said media VCM. Generally, processed content is 
then transmitted to exploitation means EXP. These exploitation means EXP enables, for example, 
the display of processed data as Images. Said exploitation means EXP can Indifferentiy be 
Included In said device or be external to said device. 

In the state of the art, said device DEV includes generally a security-dedicated part 
implemented as a conditional access system deteched from said chip CHP. On the example 



presented on figure 1, such 9 condMonal access system is represented by a smart caitl reader 
SCR able to read a smart card SC with the help of a mfcroprorassor CMP. 

Rgure lb shows an other. Implementation according to the state of the art: a removable 
security module SCR is plugged into the device as a security-dedicated part It receives 
scrambled content from the media VCM, decipher them and then send them to content 
processing means. In the state of the art, the main chip CHP Including processing means Is sold 
to be Implemented in said device DEV without any integrated prxrtsecBon. In this general case, 
data received and controlled by security-dedicated part: need to be sent to un-protected main 
chip. Such communications can be listened via, for example, a bus serving to test the chip CHP. 
Moreover, such bus can take the control of any microprocessor implemented on said main chip 
CHP. Security of the system is then no more assured. This is a crucial problem when content that 
needs to be protected is processed Inside the chip CHP. The purpose of the invention is to enable 
such a chip CHP to have Integrated protection. According to figure 2, the Invention proposes that 
the chip CHP includes at least an Integrated non-volatile programmable memory, called non- 
vdaHte memory NVM, said non-volaOIe memory NVM Including protection data ADA and 
protected data PDA, said protection data being Intended to be used for authorizing/denying 
access to said protECted data PDA by said microprocessor MP under execution of a program PRO. 

Figure 3 illustrates the principle of a content of a non-volatlle memory accortlng to the 
Invention. 

Said programmable non-voladle non-volatile memory can be flash memory, programmable 
read-only memory (PROM), non-volatile random access memory (NVRAM), magnetic random 
access memory (MRAM), one-time programmable memory... The non-volatile memory shown on 
figure 3 can be an independent prograinmable non-volatile memory or a part: of a partitioned 
programmable non-voiatile memory. A single memory as presented on figure 3 can Implement 
several embodiments according to the Invention and presented below or can be dedicated to 
implement a single embodiment. 

According to principles of the invention, protection data ADA are stored in a first address ADl 
of a non-volatile memory NVM. Said protection data ADA then protect an access to an address 
AD2 including protected data PDA In said non-volatlle memory NVM. Said access can be In 
reading or In writing or both, as It will be presented in the following. 

Several embodiments using protection data and protected data according to tfie invention are. 
proposed In the following figures and tables. These embodiments are given to enable a man 
skilled in Uie art: to understand, reproduce and use tfie invention but other kinds of protection 
data and of protected data in tfje different addresses can be modified while staying in the scope 
of the invention. 

Examples of protection data ADA: 



In a first embodiment, each value that can be taken by said protection data PDA has a 
specific meaning for the program PRO of said microprqcessor MP: access to given protected data 
PDA stored In an address or several addresses AD2, known by said program PRO, authorized or 
denied or authorized under condition. 

In a first simple implementation of the protection data according to this first embodiment the 
protection data stored in an address ADl can take two values: 0 and 1. For example, 0 
corresponds to authorized access and 1 to non-authorized access. 



Address ADl 


Values 


Name of protection data 


Ibft: • 


0/1 


ACCESS_CONTROL 



1, the access is refused. The address AD2 is then secured. Advantageously, the protection can 
only be increased. In this example it means that the ACCESS^CONTROL bit can only be set from 
0 to 1. It Is of course also possible according to the invention to allow access to address AD2 for 
a bit set to 1 and to IbrWd such access for a bit set to 0. Each access is defined as being in 
writing, in reading or both and is defined relative to one or several given addresses ADZ. Several 
examples of protected data PDA (data, program, options,..) in address ADZ will be given in the 
following. 

An advantageous implementation of protection data PDA uses a password check. It allows an 
intermediate manufacturer (like a final device manufacturer or a broadcaster) to keep the 
possibility to access to some data and/or program or options with a first level of protection 
against piracy using password. In this case protection data are coded with two bits. 

An example of such an implementation Is given in the table betow: 



Address AOl 


Values 


Name of protecUon data 


2 bits: 


0:0 / 0:1 / l:X 


ACCESSJCONTROL 


Ybits: 




SAVED_PASSWORD 



define a protection level: auttiorized access or not 

If value = 0:0, accesses to data stored In addresses AD2 are authored, said addresses AD2 
and then said non^Iaffle memory and conseqi«ntly said chip are unprotedsd. It Is pos^ble to 
read and write the Y bits of SAVED.PASSWORD. 

If value = 0:1, the non-volatile memory and then the chip are protKted by password. It is no 
more possible to read nor write the Y bits SAVEDJ>ASSWORD. To realize the password control, 
the non-volatile memory is for example, connected to a register of Y bits. It is possible to write a 
password of Y bits EMTERED_PASSWORD in this register. This password is then compared to the 
passwond saved in the non-volatile memory in an address ADl named SAVED_PASSWORD. This 
comparison can use simple random logic consisting of simple inverters, AND gates, and OR gates. 

TWO cases are then possible: 
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written ln.tt« register Is coireoiwhtt 
^VED^AS^ Ao^ses .» <^ s.o«. m a*t«s,s AD. ,s a^th^^^ 

meansll«tlienon-«lallIemen™ylsii.anoiHpratectedmode 

The pa^rt wrtlten ir, the reglsto IS not correct Accesses to <to s*«d in ^ 
« notau«K>Hzed, meanst.««« „o„^ ^ ,„ 3 

said address SAVED.PASSV«3ra, can 1« «ad or Written as long as tte «,„^ 

. an unp^tected mode ,™, can „^r «d nor as soon as c.,|p IS 

by password or by haidware. H>~aBu 

If value = l:x, X being 0 or 1, the access to addresses AIM Is protected by hartware 

*8an "he protecbon level can only be raised, never decreased, ft is then not p^ 
^ l:X to 0:x or ^ oa te 0.0. a featur. IS ^allzed using a one^ ste^ " 
^macwne defines elfecSvely dWerenl states that can be teken m a given and ««d onler' 
Sl«e5canbeonieredtorealizealoop:oncetl,elaststateofaliaofsteteslsread«d the(^ 
s«» Of the l« IS «„ «„w», or states can be orde^l in an open ™y. n^a 
ZTt^r*'"^ oteined as It IS only allowed aspect a given w«bln stetLs and 
as once the last Is reached It is no more possible to change the stete 

JZ'^T"'^ ' *la ADA stored m an «Mress ADl deflnes an address 

r ^.T" '""^ "«™»V NVM b fbrbldden, saM p«ect*,n date 

bdng n»<«hble only to be increased. It recalled that said access can again be defined In 
wrMng, m reading or m both Ibra given mkroprooessor. 

ftr example, the last imed address AOl of the non-vofatHe menK»y NVM contains a value 

™iue.^^D.WRn^^ca„benel.herread«.„r«te„by,™,crep,oces»^ 
Pn.tec.ed date PDA are defined by any daa stored in addresses sn«ller than this value 

moopnocessor. The value stored In ADl can be read, ft on also be written but only If the new 
value . togger than the old one. By the ,«y, tt« protec^n can only be Inaeased ^ a,e ad<L 
taltREADJWlD_WRim.tjmTcanonlybelncreased. «■ as the address 

llmt READJJMIT and/or a ™«„g to« wRnttlMTr. ^i, addresses smaller than READ imrr 
cannrt be read by said microprecessor. All addresses equal to or greater than this value'can be 
read by said microprocessor. AU addresses smaller a,an WRrm.a^ffr cannot be written by the 
said mtax-processor. All addresses grea^ . 

I^JIMrr and »VR^^u^,I^ can be read and can be modl«ed by a ml^preceLtT' 
only f the new values are bigger a,an the old ones. Thus.the p^tecBon level can only be 

"creased and the portion Of tt» non^olable memon, NVMthat IS p^tected IS lai^and larger 
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In this secxsnd embodfment, addresses for which access Is controlled are the addresses AD2 that 
are smaller than the value stored in ADl. 

Examples of protected data PDA in nonvolatile memory: 

As seen hereinabove, the protection data in addresses ADl aims the protection of an access 
for writing and/or for reading to others addresses AD2 of the non-volatile programmable memory 
NVI^ for a given microprocessor. Protected data PDA are stored at said addresses AD2. Below, 
examples of protected data PDA that can be stored in protected address AD2 will be presented. 

A first kind of protected data PDA can be a feature data that defines the state of a feature of 
the chip CHP. Here generally the access controlled by said protection data ADA stored in an 
address ADl, is an access in writing by a microprocessor in address AD2. The microprocessor can 
read the feature data but Its access In writing is authorized or not by protection data ADA. 

The feature can be an option implemented on said chip CHP and the feature data 
consequently gives the authorization or not to use the option. Examples of such options are the 
ones that are generally implemented under the condition of a payment of a license. For example, 
SECAM, I^CROVISION, ICAM, CaRjOlJTPUT are such kind of options. Means to realize such 
options can then be implemented in ail chips during manufacturing and their use can be enabled 
or disabled afterwards by implementing of protection levels controlled by protection data ADA as 
proposed by the invention. The Implementation of all means to realize these options in all chips 
and the final customization according to the choice of the manufacturer of the final device or of 
the broadcaster allow to realize cost saving regarding the development and manufacture of said 
chip. As a matter of fact a single version of the chip can be prepared. The dfilps are customized 
at a final production stage. This flexibility is original. In the table below are represented four 
addresses AD2 storing protected data PDA serving for the selection of options named in third 
column by taking the values in second column. 



Address AD2 


Values 


Name of feature 


Ibit: 


0/1 


ENABLE_SECAM 


Ibit: 


0/1 


ENABm_MACROVISION 


Ibib 


0/1 


ENABL^JCAM 


Iblt: 


0/1 


ENABL5_CaK.0UTPUT 



A^rding to the va ue of the bit for each of the four addresses AD2, the caRjOUTPUT 
feature can be rendered available or not, the ICAM feature can be enabled or not> the processing 
means implemented on chip CHP can add or not MACROVISION copy protection on an output of 
processing means, the processing means implemented on chip CHP can produce or not SECAM 
output. Then the access for changing these values is authorized or not by corresponding 
protection data ADA stored In an address ADl. 

The control of options is then offered under the control of protection data ADA as presented 
in said first embodiment of the invention. Preferentially, a single bit of protection data ADA stored 



3 



8 



10 



15 



20 



25 



30 



35 



in an address ADl protect the set of options. Nevertheless, several p^rtecHon data ADA sto,«J fn 
addresses ADl can also protect separately each of the above-presented addresses ADZ 

The feature protected by protection data ADA can "be any means allowing an external 
connection of the chip CHP. The invention allows enabling and disabling such means by feature 
data controlling their states: active or not. Such means are presented below. 

Boot mode of a mrcmDrocessor; 

Tlwnks to the invention, a microprocessor can have a small program caUed first boot mode 
stored In a small part of any memory on the chip to realize its first boot from an external 
memory. For example, ^n EEPROM extemal to the chip and/or external to the final device (if the 
chip is already Implemented In such a device) can be used as extemal memory. The broadcaster 
can then download fi^m this extemal memory a new boot program that can be customized at 
Will, -me activation of said first boot mode Internal or extemal is realized by the microprocessor 
by reading an address ADZ where a feature data Is stored (see example and table hereinafter) 
EffecOvely, the invention allows disabling or enabling the acHvatlon of the first boot mode to 
download a boot program by the modification of a protected data PDA stored In an address ADZ 
defining the boot mode (extemal or Internal). Protection data ADA as defined In the first 
embodiment of the Im^ntfon stored In an address ADl then control the access In writing In 
protected feature data ADA defining the boot mode. Once such activation of the fi«t boot mode 
IS disabled by change In address ADZ from 'external boof to 'Internal boof, and once the access 
for writing in address ADZ Is non-authorfzed by protection date ADA In an address ADl according 
one of the cited embodiments, the access for writing In address ADZ is no more possible and the 
'extemal' boot mode Is no more possible. The boot Is then realized from a memory Internal to the 
chip and where the new boot program has been stored. 
connections allowing arrPQc to the int-^r ""' of the rhip - 

connections of said chip to external sources can be disabled according to the Invention ' 
JTA6, EJTA6, debug Interfaces can allow an extemal user to control or listen the Internal 
operation of the chip and the invention is parOculariy interesting for such features. The state 
(active or not active) of such a feature is defined by a protected data PDA stored in an address 
ADZ (see teble herelnaflsr). Ttie access for writing in this address ADZ is controlled by protection 
date ADA according to the first embodiment of the Invention. 

This IS a new function regarding the stete of the art where these connections, mainly used for 
manufacturing or debugging Issues are generally physically suppressed for secunty reasons 
causing Inherent drawbacks concerning. In particular, the test of the chip. The Invention allows to • 
keep such connections for testing the chip and/or the device, and then to disable it in a non- 
reversible way. This disabling can be realized by simple progremmation and until the 
commercialization of the final device. 

Authorl^on to write in prngRm ^nd <feta for th^ onPr^tto n of fh. m...» p.......r- 



The writing ih addresse.of said non-volatile memory NVM can also be forbidden by storing in 
an address ADZ a value READ_ONLY as a protected data PDA under which addresses cannot be 
written. Said value READ.ONLY can be modified as long as corresponding protection data ADA 
albw the access to modity said protected data PDA. 

Protecdon data ADA according to the second embodiment can be used in order to. protect a 
second kind of protected data I^A including program and data stored within the chip. For 
example, after a downloading of programs and data Ibr a microprocessor, the invention further 
allows to control access to said downloaded programs and data. This is particuiariy advantageous 
for a ch!p wherein program and data dedicated to a conditional access system are downloaded In 
said chip itself. Effiectively, thanks to the invention, a secured conditional access unit can be 
integrated on the chip Itself. Effectively, according to a preferred embodiment of the invention as 
represented on figure 4, it is possible to have a conditional access unit CAS Inside the chip CHP 
itself. Effectively the invention allows having a protection In order to avoid the reading of 
program and data dedicated to a secured operation of a conditional access unit CAS. Such a 
feature is essential if a conditional access unit is wished to be implemented Inside the chip. 

Generally a conditional access system CAS includes a dedicated microprocessor CMP. 
Effectively the main miaoprocessor having large program and data that cannot be effidentiy 
secured. TTiat Is why, generally, anotiier microprocessor is dedicated to this function. An e)fflmple 
of such a microprocessor commonly u^ In smart: card system has the Intel 80c51 Instruction 
set This kind of microprocessor is advantageously implemented on the chip according to the 
invention. To program this microprocessor CMP, the broadcaster is free, according to the 
Invention, to choose any programs ft wants: algoriOims used to decrypt the management 
messages (ECM and EMM messages for example), encryption algoritiims and Is then free to 
choose which security features it wants to implement in the conditional access unit CAS. The 
commonly used AES or Triple-Des algorithms to decrypt ECM messages, the commonly used RSA 
algorithm or elliptic curves with a systan of pubilcisrivate teys... can then be downtoaded as 
long as downtoading means are activated by feature date as presented above, i^vanced features 
as pay per view, parental control... can then be managed accoreiing to the downloaded program. 
An advantage of the Invention is to render such choices possible without losing security as, once 
said algorithms are stored, protection date ADA according to the second embodiment of the 
Invention gives tiie possibility to un-autiiorize access to said program and data in reading and/or 
writing by storing at least a limit value in address ADl under which reading and/or writing is 
forbidden. Here, the control of access concerns accesses of a main microprocessor and not 
accesses of the conditional access microprocessor that have to make any read and write accesses 
to the non-volatile memory where conditional access program and data are stored. EfTectively in 
the lowest address, one or more keys are stored and at the upper addresses the decrypted 
access rights are stored. Access rights gives data to know for which programs ttie conditional 
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access microprocessor wfll accept to provide a descrambling key and the mafn microprocessor 
needs such data. It has consequently the right to read them. Then, the main microprocessor, 
thanks to an Implementation of protEction data ADA accoixiing to the second advantageous 
embodiment of the invention, can neither read nor written the lowest addresses and can read but 
cannot write Oie upper address whexe access rights are stored. 

Advantageously, an additional internal SRAM memory Is used for storing intermediate results 
during algorithm calculation. By construction, this last SRAM memory cannot be read or written 
by the main microprocessor, which means that there Is no connectfon between this memory and 
the main microprooesscin this SRAM has a connection only with the conditional access 
microprocessor. 

The preferred embodiment that can be used in ojmblnation or in juxtaposition with other 
embodiments according to the invention is parOculariy convenient for Set Top Box devices that 
advantageously have a conditional access system. 

An example of combination of the different presented embodiments is hereinafter presented 
in the case of a Set Top Box device. In this example, as described on figure 4, the main chip CHP 
includes, at least a microprocessor MP, a flash memory NVMS that can be partitioned. Said 
microprocessor MP Is for example a processor having a MIPS instruction set. Advantageously, 
said flash memory iWMS is not connected directiy to a microprocessor-bus but simple random 
logfc is inserted behween the microprocessor-bus and the flash memory in order to strongly 
secure the environment. 

In the upper addresses of the flash memory NVMS are stored protection date ADA that can 
be grouped In three groups: Acoess_Controi_Group, MIPS_Protection_Group, 
Selecb'onjOptionsjSroup 



Address ADl 


Values 


ftome of protection date 


Ibit 


0/1 


SeIecHon_Options_ACCESS_CONTROL 


2bils: 


0:0/0:l/l:X 


MIPS_Protection_ACCESS_CONTROL 


Ybits: 




SAVED_PASSWORD 



According to the above-presented embodiments, the protection date corresponding to 
MIPS_Protedion_ACCESS_CONTROL allows or not the access in writing to the 
MIPS_Protection_Group by the main microprocessor. Protected data of said 
I^IPS_Protectlon_Group are defined in the table below: 



Address AD2 


Values 


Name of protected data/feature 


1 bit: 


0/1 


BOOT_MODE 


1 bib 


0/1 


DISABL^BUS 
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Zbits 



READ ONLY 



F=eatures attached to these protected data have b^en presented above. For example, the 
value of BOOT.MODE being 0, the boot can be done from an external memory, the value of 
BOOT_MODE being 1, the boot is realized from an Internal non-volatile memory, for example, 
from the integrated non-volatile memory of the Invention where a downloaded boot program has 
been stored. 

Advantageously the non-volatile memory Including said microprocessor program can be 
connected directly to the microprocessor or simple random logic (also called glue logic) can be 
inserted between a microprocessor cx)nnecb*on bus and the non-voiatile memory fn order to 
secure the connection. 

Then, for ^mple, the value of DISABLE_BUS being 0, a concerned connection bus could be 
used as connection means to test the chip or the final device and to charge any wanted program 
and data at will. Then, If the value of DISABL£.BUS is 1, said connection bus cannot be used 
anymore. The value of the protected data DISABLE^BUS is then not accessible anymore by 
changing the associated protection data ADA that is according to the first embodiment of the 
invention. Any downloading and/or connection means can then be protected In such a way 
according to the Invention. 

The above protected data can be changed only if the non-volatile memory is In a non- 
protected mode according to the value stored In address ADl, which means, if the non-volatile 
memory Is un-protected (I^IPS_Protection_ACCESS_CONTROL=0:0) or If the non-volatile memory 
Is protected by password (MIPS_ProtecBon_ACCESS_COIMTROL=0:l) with a valid passworel 
entered. 

The protection data corresponding to SelecHon_Option_ACCESS_CONTROL allows or not the 
access In writing to the SelectIon_Options_Group by the main microprocessor. Protected data of 
said Selection_OpUons_Group are defined in the table below: 



Address AD2 


Values 


Name of protected data/feature 


1 bit: 


0/1 


ENABm_SEC:AM 


Ibit: 


0/1 


ENABm_|v|ACROVISION 


Ibit: 


■ 0/1 


EISIABLEJECAM 


Ibit: 


0/1 


BIABtejCaiU^UTPUT 



MlPS.Protection J\CCESS_COWTROL) is here chosen to have no influence on tills group. Only tiie 
value of SeIecUon_Options_ACaESS_COrirTROL Is considered. 

Ttie chip of the example also Includes a programmable non-volatile memory NVMC or a part 
NVMC of a programmable non-volatile memory dedicated to a conditional access unit Is 
Implemented on the chip. Said non-volatile memory IMVMC includes two parts NVMCl and NVMC2 
where are respectively stored the program and data for the functioning of the conditional access 
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microprocessor CMP. Said part NVMCl and NVMC2 Includes protection data ADA according to the 
second embodiment of the Invention In their highest afidresses. 

The Invention also concerns a m^od to customize and protect a chip according to the 
Invention. Said metiiod uses a chip including at least an integrated non-volatiie programmable 
memoiy, said non-volatile memory indyding protection data, said protection data at least 
dining a protection level for an access to said non-volatile memory, said prxjteetion data being 
programmable only In order that the protKtion level Is Increased. 

The first step Is to use at least a non-protected access to modlly data in said non-volatile 
memory, tfie second step bdng to protect the access to said data In non-volatile memory by 
Increasing protectton level for said access by modifying protection data. As criticai features can 
be prot»±ed according to the Invention a protected chip is then obtained by tiie metiiod of tfie 
Invention. Such a protected .chip Is advantageously Intended to be implemented in a device 
dedicated to be onnected to a media, including at leaA a microprocessor for processing data 
recovered from said media. For example said microprocessor ointrols coding/decoding means 
intended to process audio/video' data. 

Effectively, according to the Invention, values of protection data may be changed and 
consequentiy tiie protection can be increased during the process of manufacturing of tiie final 
protected chip. An example of a method to customize a chip is presented below. Said protection 
data can be Implemented in one or several programmable non-volatile memories in a same chip. 
A way to exploit tiie chip described in the above-proposed example of a chip Is then presented in 
order to obtain a fully protected chip. An example of a chain of events using the two steps of the 
method In difi^rent circumstances is then presented below. A broadcaster that wishes to 
fabricate customized and secured final devices advantageously uses said chain of events on the 
chip Itself or, even, on the chip Implemented in said final device. The final device manufacturer or 
the broadcaster only need means to program chip to implement a method to obtain a protected 
chip according to the invention. 

The chip is delh^ered not protected to the final device manufacturer or to the broadcaster 
vtfitii a default boot mode l^«m an extemal memory (B00T_MODE=0). Any memory intended to 
become a non-volatile memory of ttie invention integrated on the chip is not yet protected and 
access to it is authorized. The final device manufacturer or broadcaster has then to do the 
following software manipulations: 

- Program ttie conditional access microprocessor C|V|p program PRG in a part NVMCl of a 
non-volatrie memory NVMC of tiie conditional access unit CAS. In tills program all software for 
having a customized and complete conditional access system is included. For example, ttie 
broadcaster is free to choose which encryption algoritiim (RSA or other) will be used for tfiis 
purpose. 
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- Protect this condifional.access microprocessor CMP program by programming a protection 
data ADA that is a value In the highest address of part NVMCl of said part N\/MC1 of the non- 
volatile memory to forbid a main microprocessor I^P to read or write the lowest addresses of this 
program. This protection of the non-volatile memory NVMC including conditional access program 
Is realized acooncfing to the second embodiment Said part NVI^Cl is then a non-volatile memory 
NVIW according to the prindpie of the invention as illustrated on figure 3. 

- Program the conditional access microprocessor CMP data DAT in a part f4VMC2 of a non- 
volatile memory NVMC of the conditional access unit CAS. A deciphering key (RSA or other) is 
introduced in the lowest addresses allocated for these data. 

- Protect this part NVMC2 of the memory acconfing to the invention by storing a protection 
data ADA in the highest addresses of sakJ part IWMC2 in order to forbid the main microprocessor 
to read or write at the lowest addresses of said memory where the deciphering key is stored and 
also in order to forbid the main microprocessor to write at the addresses where the subscriber's 
rights are stored. This protection of the non-volatile memory including conditional access data is 
realized according to the second embodiment of said protection data. Said part NVMC2 Is then a 
non-volatlle memory NVM according to the prirwiple of the Invention as illustrated on f^ure 3. 

- Program a programmable non-volatile memory called secured memory NVMS, Integrated on 
the chip by downloading from an external memory using the external boot mode. A connection 
BUS can realize said downloading. Depending on the size of the secured memory NVMS 
integrated on the chip, either the full program of the device, either only a small boot loader is 
stored In this memory NVMS. This boot loader can check at the startup of the device that the 
other pieces of the program, stored externally to the chip, have not been modified by a hack. In 
that purpose, it can implement a signature check of the external program such as for example 
the digital signature standard (DSS), EIGamal signature, Bos-Chaum signature, l^mport: 
signature... 

Set different feature data of the MIPS_ProtecUon_Group in high addresses of said secured 
memory NVMC boot ftom internal non-volatile memory (BOaT_MODE=l), deacHvab'on of 
connectibn bus (DISABLe_BUS=l), restrfction of the authorization in writing in said secured 
memory to protect the downloaded boot program (I^D_ONLY=address limit). 

Set different feature data of the Selection.OpUons.Group in high addresses of said 
secured memory NVMS: ByiABI^SECAM, ENABL^MACROVBION, ENABiiJCAM, 
ENABLE_CaR^OUTPUT. As seen hereinabove, these options are then protected according to the 
first embodiment of the inventton independently to the fisature data of the 
MIPS_Protectlon_Group. 

- Protect said secured non-volatile memory NVMS by changing protection data 
Selecbon_Options_ACCESS_CONTROL and MIPS_Protectfon_A0CESS_CONTR0L of the 
Access_ControLGroup in the highest addresses of saki secured memory NVMS. TTie password 
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can be used to Have a first security, for example, in the case where the final device manufacturer 
delivers the final device to tiie broadcaster with a password check 
(MIPS_Prot€Ctron^CCESS_CONTROLaO:l) In order that the broadcaster stfll can activate a 
connection bus in order to test the final device. 

Once protected, there is no possibility by anyway to remove the protection from the chip. The 
decrease of said protection Is no more possible. 

With the invention, the chip manufacturer only know the tools to create the conditional 
access system and to oeate the secured memory but neither the algorithms neither the keys 
have to be known from said chip manufacturer 

In case of need of supplementary protection, a smart card can also be implemented In 
relation with main chip. Said smart card can be locked with the protected main chip by a public- 
private ke^ system. 

A complete set of tools allowing several levels of protection and several combination and 
juxtaposition of protection levels is then provided according to the invention. A single block of 
programmable non-volatile mentory can provide one or several of the presented embodiments, 
implementations and applications in Independent ways or in combination as explained 
hereinabove. Then the Invention answers to request of having protection means on the chip 
itself- Moreover, the invention goes further by proposing customizable protection means. 

TTiis is a supplementary security for the broadcaster and the final device manufacturer. This 
is also an advantage for the chip manufacturer, which does not have to introduce specific 
confidentiality procedures in its factories and along its logistic chain. 
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Clafmg: 

1. A chip for prooessing a content, comprising at least a microprocessor, characterized in 
that said chip includes an integratBd non-volatile programmable memory for storing 
protection data and protected data, said protection data being intended to be used for 
authorizing/denying access to said protected date by said microprocessor under 
ececub'on of a program. 

2. A chip according to Claim 1, wherein said protection date are only modifiable so as to 
increase the protection. 

3. A chip according to one of the Qaims 1 or 2, wherein said protection date include a 
password, said access being authorized/denied through a password checic 

4. A chip according to one of the Qaims 1 to 3, wherein said protected date include date to 
activate/deactivate an optional feature of the chip. 

5. A chip according to Qaim 4, wherein said optional feature is a connection to an external 
device for downloading program and/or date from said external device, 

6. A chip according to Claim 4, wherein said protected date include date to 
activat^deactivate an external boot program for said microprocessor, said extemal boot 
program including instructions for downloading a new boot program for said 
microprocessor from an extemal memory. 

7. ' A chip according to one of the Claims 1 or 2, wherein said protection date include a value 
defining an address limit from which the date stored in said memory are protected date and 
access to such protected date is denied. 

8. A chip according to Claim 7, wherein said protected date include programs and date for 
operating a conditional access dedicated microprocessor. 

9. A device intended to recover a content from a media and to process said content, said 
device including a connection to said media and a chip as claimed in claims 1 to 8. 

10. A device as claimed in Claim 10, intended to process encrypted video/audio date. 
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11. A method for obtaining a protected chip including at 1^ a microprocessor, said method 
using a chip as claimed in one of the Oaims 1 to 8, said method including the steps of: 

- using at least an authorized access to modify protected data in said non-volatile 
memory, 

- protecting the access to said protected data in non-volatlle memory by modifying 
protection data in order to deny said access. . . 
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""Chip integrated protecQpn means'' 



Abstract: 

The Invention relates to a chip for processing a content, comprisfng at least a mfcroprocessor. 
Said chip includes an Integrated non-volatile programmable memor/ for storing protection data 
and protected data, said protection data being Intended to be used for authorizing/denying 
access to said protected data by said microprocessor under execution of a program. 

The invention allows to protect program and data dedicated to a chip integrated conditional 
access system and to protect features as external connections and downloaded data directly on the 
chip. 
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